VPNs don’t prevent tracking, they just make sure the tracking is done through a secure tunnel.
The extra hop adds a significant barrier for the website in knowing the actual source IP. The fake source IP is likely used by many other users, and the user you are trying to track can easily rotate VPN IPs.
Adtech relies on the OpenRTB 2.5/2.6 spec for tracking, you would have removed 1 identifier out of a hundred (one that isn’t really used anyway given SSAI is so popular). In addition to that, cookie expiry timers are typically set to 365 days meaning you’re VPN would need to enabled at all times to not invalidate multi-hop. WebStorage API based trackers tend to be indefinite.
Yeah, multi-hop is pointless for tracking. The logic to it is crazy too. People think VPNs make them anonymous (they don’t), but they also think multi-hop makes them MORE anonymous. So anonymity is kind of an absolute concept. Either you are or you are not anonymous. You can’t be more anonymous than anonymous. There is no +1.
The logic to it is crazy too. People think VPNs make them anonymous (they don’t), but they also think multi-hop makes them MORE anonymous.
Whether multi-hop matters to tracking is far and away a different discussion than whether multi-hop “makes you anonymous”.
I too disagree with the original comment, but also believe the pendulum swung too far the other direction in your replies.
Situations differ. Threat models differ. More hops can, from direct personal experience, make the difference in tracking. Your claim of “…multi-hop is pointless for tracking.” has too broad of a scope to be correct.
That is not true, the sites do still track you. VPNs don’t prevent tracking, they just make sure the tracking is done through a secure tunnel.
The extra hop adds a significant barrier for the website in knowing the actual source IP. The fake source IP is likely used by many other users, and the user you are trying to track can easily rotate VPN IPs.
Its one less identifier for them to use.
Adtech relies on the OpenRTB 2.5/2.6 spec for tracking, you would have removed 1 identifier out of a hundred (one that isn’t really used anyway given SSAI is so popular). In addition to that, cookie expiry timers are typically set to 365 days meaning you’re VPN would need to enabled at all times to not invalidate multi-hop. WebStorage API based trackers tend to be indefinite.
ORTB spec: https://www.iab.com/wp-content/uploads/2016/03/OpenRTB-API-Specification-Version-2-5-FINAL.pdf
So it can matter.
barely, efectively meaningless
Yeah, multi-hop is pointless for tracking. The logic to it is crazy too. People think VPNs make them anonymous (they don’t), but they also think multi-hop makes them MORE anonymous. So anonymity is kind of an absolute concept. Either you are or you are not anonymous. You can’t be more anonymous than anonymous. There is no +1.
Whether multi-hop matters to tracking is far and away a different discussion than whether multi-hop “makes you anonymous”.
I too disagree with the original comment, but also believe the pendulum swung too far the other direction in your replies.
Situations differ. Threat models differ. More hops can, from direct personal experience, make the difference in tracking. Your claim of “…multi-hop is pointless for tracking.” has too broad of a scope to be correct.
What specifically about multi-hop makes you think it improves your security? Be specific. What is your “direct personal experience”?
I haven’t mentioned security.
Remember to read the rest of that sentence:
So, no. Not really.
It doesn’t change the contradiction.
You almost had the rest of the sentence there:
That doesn’t change the contradiction.
You’re trying to argue without evidence (like I had provided). To summarize these exchange so far its:
Is there some evidence you’d like to provide or is it going to be another “nuh-uh!”?